$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/039241b2-b599-30f0-bcc6-07b9fed5d863.roa File: 039241b2-b599-30f0-bcc6-07b9fed5d863.roa (raw, json) Hash identifier: +NLQ9vB4cRV6Q8hN11aS5AyY7HkELVUyAmUlcBFZ9NM= Subject key identifier: 66:EC:22:CB:FB:45:7D:65:FA:AB:C0:89:25:B4:38:C7:B1:E7:90:2F Certificate issuer: /CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Certificate serial: 010D0C9F43285847768222D5636F286377390F80 Authority key identifier: C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/039241b2-b599-30f0-bcc6-07b9fed5d863.roa Signing time: Mon 07 Oct 2024 14:07:33 +0000 ROA not before: Mon 07 Oct 2024 14:07:33 +0000 ROA not after: Sun 05 Jan 2025 15:07:33 +0000 asID: 398210 IP address blocks: 168.220.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0d:0c:9f:43:28:58:47:76:82:22:d5:63:6f:28:63:77:39:0f:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa Validity Not Before: Oct 7 14:07:33 2024 GMT Not After : Jan 5 15:07:33 2025 GMT Subject: CN=077cd79a-d45f-4ca4-a0ef-18501988cfd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:0f:0c:9c:44:84:94:fc:bd:be:9e:49:53:37: 79:72:8a:3f:0f:86:93:de:1a:fa:e3:b7:1e:7c:9f: 95:b8:99:ad:a5:dd:1c:bf:41:6c:68:83:f2:74:f8: 51:ee:ec:5e:31:5e:08:1e:6c:31:32:d6:72:97:e1: 23:c1:dc:36:31:19:13:76:30:cb:16:92:31:9c:1d: c7:0c:53:3b:48:32:f0:6c:3b:6b:53:b0:95:0a:f7: 7c:67:35:cd:7c:0b:f3:d6:7a:d2:84:f6:3b:d9:b4: 3a:86:63:8d:c3:ad:d2:34:82:70:08:44:b8:df:27: 15:6a:c3:e1:47:2f:85:4a:bc:d7:e8:29:92:33:87: 27:ef:ae:de:8c:a9:a4:2e:da:67:4a:fe:dc:8d:cf: ac:3d:61:64:e2:6e:33:5e:2d:25:a0:c6:11:a9:a0: 29:fd:f9:d7:fa:ae:bc:27:fd:6f:29:b1:52:da:d6: d2:19:13:b0:20:38:30:84:e7:ff:20:29:02:8d:3d: 08:41:1f:f1:fd:9e:17:f3:59:50:5e:3b:17:ac:70: cf:04:85:77:50:f7:6c:44:96:2f:63:99:22:28:67: bc:41:df:e8:35:b1:35:8f:6f:bd:bd:8f:ea:00:21: 37:d3:1b:70:0e:ba:4e:80:ab:f0:b0:4e:68:51:eb: c9:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:EC:22:CB:FB:45:7D:65:FA:AB:C0:89:25:B4:38:C7:B1:E7:90:2F Subject Information Access: Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/039241b2-b599-30f0-bcc6-07b9fed5d863.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl X509v3 Authority Key Identifier: keyid:C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer sbgp-ipAddrBlock: critical IPv4: 168.220.176.0/23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.arin.net/resources/rpki/cps.html Signature Algorithm: sha256WithRSAEncryption 42:53:57:df:dc:61:f5:72:37:b4:1c:78:91:79:fb:e2:f5:d8: 21:76:cf:db:f5:b5:9a:ab:be:4c:90:34:bb:68:d8:4b:6b:78: 65:6c:2e:6d:8a:f1:c1:7b:5f:4b:28:20:76:fd:6f:8c:93:d6: e1:77:61:30:e8:66:3d:a3:cf:7e:fb:f0:63:fe:ea:ce:b4:2e: 4d:73:b1:b6:3c:d2:fe:d2:ad:85:c2:10:a9:a8:fe:1f:79:42: 28:fd:7a:81:26:14:65:e3:a3:5a:ef:5b:16:3c:10:43:86:44: 9f:68:2c:fe:a3:97:d1:2c:c1:15:f9:8c:b1:d9:b9:dd:db:55: 6c:e1:18:8c:aa:e2:29:ef:50:70:0e:0c:83:a8:ea:2e:2c:f5: ef:64:0f:f8:84:de:1f:17:a5:a1:a2:6e:68:23:e6:0f:b2:d2: 0c:0b:c5:29:27:fb:62:83:1a:a9:64:c2:9e:06:a4:1b:8d:0b: c0:29:c4:bb:4b:cd:15:50:4c:d2:47:7a:06:e8:4e:ed:20:70: a8:08:58:e1:d7:34:04:ea:3e:b7:7b:37:63:44:9b:1b:0e:a8: ac:c1:06:9b:8f:b3:19:b6:2a:b6:3e:02:57:a6:b8:4f:4f:75: bb:4c:6d:74:7d:8c:a9:7b:70:37:9e:06:6f:5a:43:7b:ca:f5: 21:82:eb:67 -----BEGIN CERTIFICATE----- MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEd2giLVY28oY3c5D4AwDQYJKoZIhvcNAQEL BQAwLzEtMCsGA1UEAxMkZGFhOGJkZjItMzFkZi00ZTFlLWJjZjMtOTZkNmM1ODAw ZmFhMB4XDTI0MTAwNzE0MDczM1oXDTI1MDEwNTE1MDczM1owLzEtMCsGA1UEAxMk MDc3Y2Q3OWEtZDQ1Zi00Y2E0LWEwZWYtMTg1MDE5ODhjZmQzMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgw8MnESElPy9vp5JUzd5coo/D4aT3hr647ce fJ+VuJmtpd0cv0FsaIPydPhR7uxeMV4IHmwxMtZyl+Ejwdw2MRkTdjDLFpIxnB3H DFM7SDLwbDtrU7CVCvd8ZzXNfAvz1nrShPY72bQ6hmONw63SNIJwCES43ycVasPh Ry+FSrzX6CmSM4cn767ejKmkLtpnSv7cjc+sPWFk4m4zXi0loMYRqaAp/fnX+q68 J/1vKbFS2tbSGROwIDgwhOf/ICkCjT0IQR/x/Z4X81lQXjsXrHDPBIV3UPdsRJYv Y5kiKGe8Qd/oNbE1j2+9vY/qACE30xtwDrpOgKvwsE5oUevJzQIDAQABo4IDVTCC A1EwHQYDVR0OBBYEFGbsIsv7RX1l+qvAiSW0OMex55AvMIHlBggrBgEFBQcBCwSB 2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh MjE1N2QzLzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4 YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2YzU4MDBmYWEvMDM5MjQxYjItYjU5OS0z MGYwLWJjYzYtMDdiOWZlZDVkODYzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy81MjFlYjMzZi05 NjcyLTRjZDktYWNjZS0xMzcyMjdlOTcxYWMvZGFhOGJkZjItMzFkZi00ZTFlLWJj ZjMtOTZkNmM1ODAwZmFhL2RhYThiZGYyLTMxZGYtNGUxZS1iY2YzLTk2ZDZjNTgw MGZhYS5jcmwwHwYDVR0jBBgwFoAUyCFqU1QzdhPb+/O0YJVeGB5q08UwDgYDVR0P AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzUyMWViMzNmLTk2NzItNGNk OS1hY2NlLTEzNzIyN2U5NzFhYy9kYWE4YmRmMi0zMWRmLTRlMWUtYmNmMy05NmQ2 YzU4MDBmYWEuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBqNywMFQG A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93 d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL BQADggEBAEJTV9/cYfVyN7QceJF5++L12CF2z9v1tZqrvkyQNLto2EtreGVsLm2K 8cF7X0soIHb9b4yT1uF3YTDoZj2jz3778GP+6s60Lk1zsbY80v7SrYXCEKmo/h95 Qij9eoEmFGXjo1rvWxY8EEOGRJ9oLP6jl9EswRX5jLHZud3bVWzhGIyq4invUHAO DIOo6i4s9e9kD/iE3h8XpaGibmgj5g+y0gwLxSkn+2KDGqlkwp4GpBuNC8ApxLtL zRVQTNJHegboTu0gcKgIWOHXNATqPrd7N2NEmxsOqKzBBpuPsxm2KrY+AlemuE9P dbtMbXR9jKl7cDeeBm9aQ3vK9SGC62c= -----END CERTIFICATE-----Generated at Fri Nov 22 04:39:23 2024 by rpki-client on console-ams.rpki-client.org